$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: NQt2+TJKLoz/kHvKIa979YMkGx9OnlWXgiY8l+n+h3U= Subject key identifier: 65:1C:AC:55:BB:7C:F7:87:67:AD:0A:D6:00:D2:CB:1F:D0:44:37:0C Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 34DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 34D8 Signing time: Tue 04 Nov 2025 14:56:00 +0000 Manifest this update: Tue 04 Nov 2025 14:55:59 +0000 Manifest next update: Tue 11 Nov 2025 14:55:59 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: u4jUAEaLXt+iSbmIhCXGsT4dUo8GaAO/xbXm9ih5Qm8=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13532 (0x34dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Nov 4 14:55:59 2025 GMT Not After : Nov 11 14:55:59 2025 GMT Subject: CN=690a1400-e873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0c:f3:f4:18:f4:7b:23:23:b3:25:ed:06:eb: d9:35:b6:f5:00:e4:01:58:6b:49:d4:7c:61:72:93: 00:97:13:3c:56:4f:b6:bf:51:83:d4:1a:69:18:3a: 8a:fc:57:b5:d5:f0:21:77:c9:d6:df:07:0e:ef:97: 42:68:ff:1f:69:47:1f:8d:88:5b:83:20:4f:98:46: 16:52:c3:0f:e8:36:84:5e:97:21:fe:22:4c:c1:e3: d3:97:0f:c8:3a:83:27:06:b1:58:5a:06:d0:c7:f3: 6f:d2:b7:a1:76:70:a1:f7:4a:8d:8f:a1:17:0d:3b: 83:b8:05:15:d1:b7:31:71:c7:07:f9:45:ca:10:3e: 4c:4b:97:1e:bb:5d:16:2a:c4:32:0b:d7:c3:5c:5a: 6f:74:85:6e:ce:f8:06:b0:66:6d:f3:10:ba:f5:09: 65:35:fd:80:1c:79:0f:d2:48:37:82:8c:7d:cd:b6: dd:6a:77:8e:4b:39:e7:2b:f3:3a:82:54:d5:6b:8c: 7f:45:82:ef:c1:57:65:00:72:21:4d:13:5f:7a:31: e9:68:a0:20:25:d6:ca:58:14:2d:42:34:a5:f9:92: 7f:13:89:f8:cc:13:94:14:c7:61:34:7a:9f:dc:93: fa:ce:8f:52:b4:95:93:a5:73:e9:5f:c9:3a:b3:f8: 3b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1C:AC:55:BB:7C:F7:87:67:AD:0A:D6:00:D2:CB:1F:D0:44:37:0C X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:b4:0a:2a:2c:12:6d:7d:4a:c2:55:54:d2:f1:4b:af:85:d9: 6c:73:a6:12:a1:34:9f:21:9d:15:2d:0e:cd:4d:32:bc:bb:49: 43:a6:a8:10:dc:8e:c3:5c:fd:2d:4b:a8:b2:7f:14:c6:2a:2e: f2:95:32:57:72:9e:a1:d7:42:a5:6a:79:5e:2d:fc:8b:3d:47: 60:5d:61:ed:9a:f6:79:b9:15:20:86:b6:f7:7a:47:ad:e9:11: ed:2f:a2:c6:24:a4:63:6d:c6:b5:bd:aa:7f:95:0e:50:f5:56: 86:83:07:f6:3f:22:c5:32:00:3a:9c:47:b9:8e:9e:b0:4b:29: b2:73:33:af:61:93:f2:0c:51:06:8e:7b:a7:99:ad:f2:e9:6a: 0d:7c:50:db:16:6f:28:90:32:71:cd:36:b4:4c:de:3f:24:20: 2e:a4:6c:de:05:7d:a2:e6:03:65:e2:e5:36:ec:b9:b5:58:ce: 4a:79:f5:23:40:5e:01:36:4f:7f:40:1a:c0:19:66:ed:c9:8b: ec:6c:a9:03:45:c5:f1:c5:68:a1:3d:78:2e:65:82:78:ac:fa: 28:ca:06:ff:76:58:b0:8b:a6:5f:fc:aa:ea:bd:4b:75:96:e1: 85:e8:43:31:cf:ba:a6:7f:4a:f9:5e:74:53:d3:9b:db:30:1b: 51:91:57:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUxMTA0MTQ1NTU5WhcNMjUxMTExMTQ1NTU5WjAYMRYwFAYD VQQDEw02OTBhMTQwMC1lODczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAzz9Bj0eyMjsyXtBuvZNbb1AOQBWGtJ1HxhcpMAlxM8Vk+2v1GD1BppGDqK /Fe11fAhd8nW3wcO75dCaP8faUcfjYhbgyBPmEYWUsMP6DaEXpch/iJMwePTlw/I OoMnBrFYWgbQx/Nv0rehdnCh90qNj6EXDTuDuAUV0bcxcccH+UXKED5MS5ceu10W KsQyC9fDXFpvdIVuzvgGsGZt8xC69QllNf2AHHkP0kg3gox9zbbdaneOSznnK/M6 glTVa4x/RYLvwVdlAHIhTRNfejHpaKAgJdbKWBQtQjSl+ZJ/E4n4zBOUFMdhNHqf 3JP6zo9StJWTpXPpX8k6s/g7ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUcrFW7 fPeHZ60K1gDSyx/QRDcMMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACtAoqLBJtfUrCVVTS8Uuvhdlsc6YSoTSfIZ0VLQ7NTTK8u0lDpqgQ 3I7DXP0tS6iyfxTGKi7ylTJXcp6h10KlanleLfyLPUdgXWHtmvZ5uRUghrb3eket 6RHtL6LGJKRjbca1vap/lQ5Q9VaGgwf2PyLFMgA6nEe5jp6wSymyczOvYZPyDFEG jnunma3y6WoNfFDbFm8okDJxzTa0TN4/JCAupGzeBX2i5gNl4uU27Lm1WM5KefUj QF4BNk9/QBrAGWbtyYvsbKkDRcXxxWihPXguZYJ4rPooygb/dliwi6Zf/KrqvUt1 luGF6EMxz7qmf0r5XnRT05vbMBtRkVch -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:38 2025 by rpki-client